lp://staging/ubuntu/precise-updates/eglibc
- Get this branch:
- bzr branch lp://staging/ubuntu/precise-updates/eglibc
Branch merges
Branch information
Recent revisions
- 322. By Steve Beattie
-
* REGRESSION UPDATE: revert CVE-2014-9761 fix due to added symbol
dependency from libm to libc (LP: #1585614)
- debian/patches/ any/CVE- 2014-9761- 2.diff: keep exporting
__strto*_nan symbols added to libc. - 321. By Steve Beattie
-
* SECURITY UPDATE: buffer overflow in gethostbyname_r and related
functions
- debian/patches/ any/CVE- 2015-1781. diff: take alignment padding
into account when computing if buffer is too small.
- CVE-2015-1781
* SECURITY UPDATE: glibc Name Service Switch (NSS) denial of sevice
- debian/patches/ any/CVE- 2014-8121- 1.diff: do not close NSS files
database during iteration.
- debian/patches/ any/CVE- 2014-8121- 2.diff: Separate internal state
between getXXent and getXXbyYY NSS calls.
- CVE-2014-8121
* SECURITY UPDATE: glibc unbounded stack usage in NaN strtod
conversion
- debian/patches/ any/CVE- 2014-9761- 1.diff: Refactor strtod parsing
of NaN payloads.
- debian/patches/ any/CVE- 2014-9761- 1.diff: Fix nan functions
handling of payload strings
- CVE-2014-9761
* SECURITY UPDATE: out of range data to strftime() causes segfault
(denial of service)
- debian/patches/ any/CVE- 2015-8776. diff: add range checks to
strftime() processing
- CVE-2015-8776
* SECURITY UPDATE: glibc honors LD_POINTER_GUARD env for setuid
AT_SECURE programs (e.g. setuid), allowing disabling of pointer
mangling
- debian/patches/ any/CVE- 2015-8777. diff: Always enable pointer
guard
- CVE-2015-8777
* SECURITY UPDATE: integer overflow in hcreate and hcreate_r
- debian/patches/ any/CVE- 2015-8778. diff: check for large inputs
- CVE-2015-8778
* SECURITY UPDATE: unbounded stack allocation in catopen()
- debian/patches/ any/CVE- 2015-8779. diff: stop using unbounded
alloca()
- CVE-2015-8779
* SECURITY UPDATE: Stack overflow in _nss_dns_getnetbyname_ r
- debian/patches/ any/CVE- 2016-3075. diff: do not make unneeded
memory copy on the stack.
- CVE-2016-3075
* SECURITY UPDATE: pt_chown privilege escalation
- debian/patches/ any/CVE- 2016-2856- pre.diff: add option to
enable/disable pt_chown.
- debian/patches/ any/CVE- 2016-2856. diff: grantpt: trust the kernel
about pty group and permission mode
- debian/debhelper. in/libc- bin.install: drop installation of
pt_chown
- CVE-2016-2856, CVE-2013-2207
* debian/debhelper. in/libc. postinst: add reboot notifications for
security updates (LP: #1546457) - 320. By Marc Deslauriers
-
* SECURITY UPDATE: glibc getaddrinfo stack-based buffer overflow
- debian/patches/ any/CVE- 2015-7547- pre1.diff: fix memory leak in
resolv/nss_dns/ dns-host. c.
- debian/patches/ any/CVE- 2015-7547- pre2.diff: fix memory leak in
include/resolv. h, resolv/ gethnamaddr. c, resolv/ nss_dns/ dns-canon. c,
resolv/nss_dns/ dns-host. c, resolv/ nss_dns/ dns-network. c,
resolv/res_query. c, resolv/res_send.c.
- debian/patches/ any/CVE- 2015-7547. diff: fix buffer handling in
resolv/nss_dns/ dns-host. c, resolv/res_query.c, resolv/res_send.c.
- CVE-2015-7547 - 319. By Adam Conrad
-
* cvs-vfprintf-
multibyte. diff: Fix "memory exhausted" bug in who, by no
longer parsing %s format arguments as multibyte strings (LP: #1109327)
* cvs-__SSE_MATH__- feraiseexcept. diff: Check for __SSE_MATH__ in x86_64
feraiseexcept to fix backported -m32 builds of GCC 4.8 (LP: #1165387)
* cvs-canonical-name.diff: Don't incorrectly do a PTR lookup when asked
to do a canonical lookup for a host using AI_CANONNAME (LP: #1057526)
* cvs-atomic-fastbins. diff: Fix race in free() of fastbin (LP: #1020210) - 318. By Marc Deslauriers
-
* SECURITY UPDATE: getaddrinfo writes to random file descriptors under
high load
- debian/patches/ any/cvs- resolv- reuse-fd. diff: reload file descriptor
after calling reopen in resolv/res_send.c.
- CVE-2013-7423
* SECURITY UPDATE: denial of service via endless loop in getaddr_r
- debian/patches/ any/cvs- getnetbyname. diff: iterate over alias names in
resolv/nss_dns/ dns-network. c.
- CVE-2014-9402
* SECURITY UPDATE: buffer overflow in wscanf
- debian/patches/ any/cvs- wscanf. diff: calculate correct size in
stdio-common/ vfscanf. c, added test to stdio-common/ tst-sscanf. c.
- CVE-2015-1472
- CVE-2015-1473 - 317. By Steve Beattie
-
* SECURITY UPDATE: buffer overflow in __nss_hostname_
digits_ dots
- debian/patches/ any/CVE- 2015-0235. diff: fix overflow in
nss/digits_ dots.c
- CVE-2015-0235 - 316. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service in IBM gconv modules
- debian/patches/ any/CVE- 2012-6656. diff: fix check in
iconvdata/ibm930. c.
- debian/patches/ any/cvs- CVE-2014- 6040.diff: fix checks in
iconvdata/ibm*.c.
- CVE-2012-6656
- CVE-2014-6040
* SECURITY UPDATE: arbitrary command execution via wordexp (LP: #1396471)
- debian/patches/ any/CVE- 2014-7817. diff: properly handle WRDE_NOCMD in
posix/wordexp. c, added tests to posix/wordexp- test.c.
- CVE-2014-7817 - 315. By Adam Conrad
-
* SECURITY UPDATE: heap overflow in __gconv_
translit_ find() (LP: #1362409)
- debian/patches/ any/cvs- CVE-2014- 5119.diff: Backport upstream commit to
completely remove support for loadable gconv transliteration modules.
* SECURITY REGRESSION: localplt regression introduced in 2.15-0ubuntu10.6
- debian/patches/ any/submitted- CVE-2014- 0475.diff: update with a backport
of upstream commit ca38dc17 to include memmem hidden alias declaration. - 314. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service via buffer overflow in getaddrinfo
- debian/patches/ any/CVE- 2013-4458. patch: fix overflow in
sysdeps/posix/getaddrin fo.c.
- CVE-2013-4458
* SECURITY UPDATE: Directory traversal in locale environment handling
- debian/patches/ any/CVE- 2014-0475. diff: validate locale names in
locale/findlocale. c, locale/setlocale.c, added test to
localedata/tst-setlocale3. c, localedata/ Makefile.
- CVE-2014-0475
* SECURITY UPDATE: use-after-free via posix_spawn_file_actions_ addopen
failing to copy the path argument
- debian/patches/ any/CVE- 2014-4043. diff: properly copy path in
posix/spawn_faction_ addopen. c, posix/spawn_ faction_ destroy. c,
posix/spawn_int. h, added test to posix/tst-spawn.c.
- CVE-2014-4043
* debian/patches/ any/CVE- 2013-4237- part2.diff: fix alignment issue
causing a readdir regression on sparc.
* debian/patches/ any/CVE- 2013-4332- part2.diff: added a couple of extra
commits to fix another overflow and an infinite loop. - 313. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service and possible code execution via
strcoll overflows
- debian/patches/ any/CVE- 2012-44xx. diff: fix overflows in
string/strcoll_ l.c, add test to string/ tst-strcoll- overflow. c,
string/Makefile.
- CVE-2012-4412
- CVE-2012-4424
* SECURITY UPDATE: denial of service in regular expression matcher
- debian/patches/ any/CVE- 2013-0242. diff: fix buffer overrun in
posix/regexec. c, add test to posix/bug- regex34. c, posix/Makefile.
- CVE-2013-0242
* SECURITY UPDATE: denial of service in getaddrinfo
- debian/patches/ any/CVE- 2013-1914. diff: fix overflow in
sysdeps/posix/getaddrin fo.c.
- CVE-2013-1914
* SECURITY UPDATE: denial of service and possible code execution via
readdir_r
- debian/patches/ any/CVE- 2013-4237. diff: enforce NAME_MAX limit in
sysdeps/unix/readdir_ r.c, add errcode to sysdeps/ unix/dirstream. h,
sysdeps/unix/opendir. c, sysdeps/ unix/rewinddir. c, remove
GETDENTS_64BIT_ALIGNED from
sysdeps/unix/sysv/ linux/i386/ readdir64_ r.c,
sysdeps/unix/sysv/ linux/wordsize- 64/readdir_ r.c.
- CVE-2013-4237
* SECURITY UPDATE: denial of service and possible code execution via
overflows in memory allocator
- debian/patches/ any/CVE- 2013-4332. diff: check for overflows in
malloc/malloc. c.
- CVE-2013-4332
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp://staging/ubuntu/saucy/eglibc